The GRC Podcast

Has anyone implemented graph databases for their own GRC program?

Sometimes we need to lead with the taboo statement. Traditional VRM as practiced by most businesses today amounts to little more than an elaborate "cover your ass" ritual. The notion that questionnaires and compliance reports alone can significantly reduce risk is misleading at best and willfully ignorant at worst. The most effective way to reduce vendor risk is by proactively insulating your business, your customers, and your data from inevitable issues, rather than relying solely on "industry best practice" VRM method.

My company doesn’t share trust centers and compliance reports, we share our 🔭STAR CHART💫

Thanks for that groundbreaking thought leadership, Security Socrates.

📣 Give me your honest take on the new “something to consider” episodes. Based on download metrics, listeners don’t seem to be engaged with them as much as the interview format (on first day downloads and growth thereafter) I feel like something is missing but at this time I can’t articulate what that may be. What are your thoughts?

Transitioning to automated GRC doesn’t have to be an all-or-nothing approach. Start by dissecting your processes to understand and target the most significant pain points for automation. This iterative strategy not only brings immediate value but also ensures a smoother, more informed transition to efficiency.

I love working on this podcast. It’s required me to learn new things beyond the core GRC skill set, but the topic has started to feel like my entire identity. Hyper-focus has its perks, but it needs to be sustainable. While taking on more tasks amidst burnout seems paradoxical, diving into an unrelated activity has been a refreshing escape. If you’re feeling similarly, treat yourself to a money pit hobby that does nothing but ✨spark joy✨!

What's that quote? Something like "nothing makes you sound crazier than talking about things the CIA/NSA has outright admitted to doing"?

🆕 Podcast Segment: "Something to Consider"🤔 Start your week with our latest episode, unlocking innovative perspectives on GRC intertwined with customer-centric values. Dive into the integral role of user experience and creative thinking in Governance, Risk, and Compliance through the lens of Tony Fadell's 'Build', and discover how strategic decisions can transform GRC from a back-office function to a pivotal force in business strategy.

I'm excited to unveil a new segment on our podcast: "Something to Consider." This segment will highlight key ideas and insights that have profoundly shaped my work approach. Our journey begins this Monday with an episode inspired by Tony Fadell's 'Build,' exploring a lesson that continues to influence me deeply. *I'm deeply invested in delivering enriching, in-depth interviews, and recognize the need to continuously refine my skills to offer maximum value to my listeners. While I put in place better processes for conducting long form interviews, I hope this new venture keeps the conversation going. I would love to hear your thoughts on these focused episodes. Your feedback is not just welcome—it's essential.